3com 5500-SI Manual De Usuario
SSH Terminal Services 205
SSH Client Configuration
Table 186 describes SSH configuration tasks.
In the initial authentication, if the SSH client does not have the public key for the
server which it accesses for the first time, the client continues to access the server and
save locally the public key of the server. Then at the next access, the client can
authenticate the server using the public key saved locally.
server which it accesses for the first time, the client continues to access the server and
save locally the public key of the server. Then at the next access, the client can
authenticate the server using the public key saved locally.
Displaying SSH
Configuration
Use the display commands in any view to view the running of SSH and further to
check the configuration result.
check the configuration result.
Users using SecureCRT as the client side software will fail to log onto a switch if they
check the Enable OpenSSH agent forwarding option.
check the Enable OpenSSH agent forwarding option.
Table 186 Configure SSH client
Operation
Command
Description
Enter system view
system-view
-
Enable the connection
between SSH client and
server
between SSH client and
server
ssh2 host-ipaddr [ port ] [ prefer_kex {
dh_group1 | dh_exchange_group } ] [
prefer_ctos_cipher { des | aes128 } ] [
prefer_stoc_cipher { des | aes128 } ] [
prefer_ctos_hmac { sha1 | sha1_96 |
md5 | md5_96 } ] [ prefer_stoc_hmac
{ sha1 | sha1_96 | md5 | md5_96 } ]
dh_group1 | dh_exchange_group } ] [
prefer_ctos_cipher { des | aes128 } ] [
prefer_stoc_cipher { des | aes128 } ] [
prefer_ctos_hmac { sha1 | sha1_96 |
md5 | md5_96 } ] [ prefer_stoc_hmac
{ sha1 | sha1_96 | md5 | md5_96 } ]
Required
You can use this command to
enable the connection between
SSH client and server, define
key exchange algorithm
preference, encryption
algorithm preference and
HMAC algorithm preference
between the server and client.
You can use this command to
enable the connection between
SSH client and server, define
key exchange algorithm
preference, encryption
algorithm preference and
HMAC algorithm preference
between the server and client.
Allocate a public key to
the server
the server
ssh client server-ip assign rsa-key
keyname
keyname
Required
You can specify on the client
the public key for the server to
be connected to guarantee the
client can be connected to a
reliable server.
You can specify on the client
the public key for the server to
be connected to guarantee the
client can be connected to a
reliable server.
Configure the client to
run the initial
authentication
run the initial
authentication
ssh client first-time enable
Optional
By default, the client runs the
initial authentication.
By default, the client runs the
initial authentication.
Table 187 Display SSH configuration
Operation
Command
Display host and server public keys
display rsa local-key-pair public
Display client RSA public key
display rsa peer-public-key [ brief | name keyname ]
Display SSH status and session
information
information
display ssh server { status | session }
Display SSH user information
display ssh user-information [ username ]